npm/@vendure/core — 2 CVEs · VulnScopepkg:npm/@vendure/core
共 2 筆 CVECRITICAL1
✅ 檢查你的版本
所有已知漏洞
CRITICAL9.1CVE-2026-40887@vendure/core has a SQL Injection vulnerability >= 3.0.0, < 3.5.7
—CVE-2026-25050Vendure vulnerable to timing attack that enables user enumeration in NativeAuthenticationStrategy from 0, < 3.5.3